2023年1月31日星期二

QNAP NAS Remote Code Execution Vulnerability

Release Date: 31 Jan 2023

RISK: High Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

A vulnerability was identified in QNAP NAS. A remote attacker can exploit this vulnerability to trigger remote code execution on the targeted system.

Impact

Remote Code Execution

System / Technologies affected

QTS 5.0.1
QuTS hero h5.0.1

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:
https://www.qnap.com/en/security-advisory/QSA-23-01

Vulnerability Identifier

CVE-2022-27596

Source

QNAP

Related Link

https://www.qnap.com/en/security-advisory/QSA-23-01

沒有留言:

發佈留言

訂閱：發佈留言 (Atom)